Support data URI auth images and fix auth name display

[felixfon]

• Added support for data URIs in the image parameter.
• Replaced spacers with CSS margins for better layout control and to prevent link underlines from touching the image.
• Implemented vertical alignment for images and text.

[Copilot]

Pull request overview

This PR updates how authentication provider icons/names are rendered across the accounts UI and extends the auth icon source handling to support data: URIs (in addition to static files and http(s) URLs).

Changes:

• Update templates to use the simplified {% auth_name ... %} tag invocation and adjust layout/styling for provider labels.
• Extend auth_name icon handling to treat data: URIs as non-static sources.
• Refactor the auth_name HTML markup generation to wrap labels in a dedicated .auth-name element.

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 5 comments.

Show a summary per file

File	Description
weblate/templates/accounts/user.html	Updates identity table rendering to use the new auth_name signature/output.
weblate/templates/accounts/register.html	Updates registration backend buttons to use the new auth_name signature/output.
weblate/templates/accounts/redirect.html	Updates redirect button rendering to use the new auth_name signature/output.
weblate/templates/accounts/login.html	Updates login backend buttons to use the new auth_name signature/output.
weblate/static/styles/main.css	Adjusts .auth-name spacing/alignment to replace template-provided separators.
weblate/accounts/templatetags/authnames.py	Adds data: URI handling and changes the generated auth icon/label markup.

[Copilot]

This adds a user-visible capability (supporting SOCIAL_AUTH_*_IMAGE as a data: URI) and changes how auth provider names/icons are rendered on login/registration pages. Please add an entry to docs/changes.rst under the appropriate rubric so the behavior change is discoverable for admins/custom theme authors.

[Copilot]

Allowing any data: URI here means non-image payloads (and potentially risky SVG variants) can be embedded as the auth icon. Consider restricting this to data:image/… (and/or a short allowlist like data:image/png, data:image/jpeg, data:image/svg+xml) to better match the expected "image" semantics and reduce XSS risk surface if this setting is ever user-controlled.

[Copilot]

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 1 comment.

[Copilot]

The new data: handling changes URL resolution behavior for auth provider images, but there is no automated test covering this (e.g., ensuring data: URIs are not passed through staticfiles_storage.url() and still render correctly). Adding a small SimpleTestCase that renders {% auth_name %} for both a data: image and a static filename would help prevent regressions.

[accesslint]

Found 1 issue across 1 rule.

[nijel]

The name should be next to the image, so clearly hide this from the screen readers:

Suggested change

	IMAGE_SOCIAL_TEMPLATE = """<img class="auth-image" src="{image}" />"""
	IMAGE_SOCIAL_TEMPLATE = """<img class="auth-image" src="{image}" alt="" aria-hidden="true"/>"""

[nijel]

Removing the default separator breaks the add new identity tab in the user profile which relied on this.

[felixfon]

The template isn't passing that argument anymore, so it should be safe! I've checked the code here and it seems fine.
It works perfectly on my device, too. Did I miss a spot somewhere else?

[nijel]

Before this PR, the names were below the icons because it used the default separator <br>.

[felixfon]

Before this PR, the names were below the icons because it used the default separator <br>.

Thanks for the heads-up. I've fixed it.